Kant's Times

EncryptHub Exploits Windows Zero-Day to Deploy Rhadamanthys and StealC Malware Windows MMC Framework Zero-Day Exploited to Execute Malicious Code 위협 개요공격 그룹: EncryptHub (Water Gamayun, LARVA-208)취약점: CVE-2025-26633 (Microsoft Management Console MMC Improper Neutralization)공격 방식: MSC EvilTwin 기법을 통해 악성 .msc 파일 실행 및 권한 우회공격 도구: EncryptHub Stealer, Rhadamanthys Stealer, StealC, DarkWisp 백도어, Silent..

CVE-2025-26633: How Water Gamayun Weaponizes MUIPath using MSC EvilTwin CVE-2025-26633: How Water Gamayun Weaponizes MUIPath using MSC EvilTwinTrend Research identified Russian threat actor Water Gamayun exploiting CVE-2025-26633, a zero-day vulnerability in the Microsoft Management Console that attackers exploit to execute malicious code and exfiltrate data.www.trendmicro.com 위협 개요러시아 연계 위협 그룹 ..